Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.841776
Categoría:Ubuntu Local Security Checks
Título:Ubuntu Update for net-snmp USN-2166-1
Resumen:The remote host is missing an update for the 'net-snmp'; package(s) announced via the referenced advisory.
Descripción:Summary:
The remote host is missing an update for the 'net-snmp'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Ken Farnen discovered that Net-SNMP incorrectly handled AgentX
timeouts. A remote attacker could use this issue to cause the server to crash
or to hang, resulting in a denial of service. (CVE-2012-6151)

It was discovered that the Net-SNMP ICMP-MIB incorrectly validated input. A
remote attacker could use this issue to cause the server to crash,
resulting in a denial of service. This issue only affected Ubuntu 13.10.
(CVE-2014-2284)

Viliam Pú č ik discovered that the Net-SNMP perl trap handler incorrectly
handled NULL arguments. A remote attacker could use this issue to cause the
server to crash, resulting in a denial of service. (CVE-2014-2285)

It was discovered that Net-SNMP incorrectly handled AgentX multi-object
requests. A remote attacker could use this issue to cause the server to
hang, resulting in a denial of service. This issue only affected Ubuntu
10.04 LTS, Ubuntu 12.04 LTS and Ubuntu 12.10. (CVE-2014-2310)

Affected Software/OS:
net-snmp on Ubuntu 13.10,
Ubuntu 12.10,
Ubuntu 12.04 LTS,
Ubuntu 10.04 LTS

Solution:
Please Install the Updated Packages.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-6151
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html
BugTraq ID: 64048
http://www.securityfocus.com/bid/64048
http://www.gentoo.org/security/en/glsa/glsa-201409-02.xml
http://sourceforge.net/p/net-snmp/bugs/2411/
http://seclists.org/oss-sec/2013/q4/398
http://seclists.org/oss-sec/2013/q4/415
RedHat Security Advisories: RHSA-2014:0322
https://rhn.redhat.com/errata/RHSA-2014-0322.html
http://secunia.com/advisories/55804
http://secunia.com/advisories/57870
http://secunia.com/advisories/59974
http://www.ubuntu.com/usn/USN-2166-1
XForce ISS Database: netsnmp-cve20126151-dos(89485)
https://exchange.xforce.ibmcloud.com/vulnerabilities/89485
Common Vulnerability Exposure (CVE) ID: CVE-2014-2284
http://sourceforge.net/p/net-snmp/code/ci/a1fd64716f6794c55c34d77e618210238a73bfa1/
http://comments.gmane.org/gmane.comp.security.oss.general/12284
RedHat Security Advisories: RHSA-2014:0321
http://rhn.redhat.com/errata/RHSA-2014-0321.html
http://secunia.com/advisories/57124
http://secunia.com/advisories/57526
http://secunia.com/advisories/57583
SuSE Security Announcement: openSUSE-SU-2014:0398 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00060.html
SuSE Security Announcement: openSUSE-SU-2014:0399 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00061.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-2285
http://www.nntp.perl.org/group/perl.perl5.porters/2006/09/msg116250.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-2310
http://seclists.org/oss-sec/2014/q1/513
http://seclists.org/oss-sec/2014/q1/527
http://ubuntu.com/usn/usn-2166-1
CopyrightCopyright (C) 2014 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.